4.1AI Score
Alcatel Operating System (AOS) does not require a password for accessing the telnet server
Overview The OmniSwitch 7700/7800 running Alcatel Operating System (AOS) version 5.1.1 has TCP port 6778 listening as a telnet server. This gives anyone access to the OmniSwitch's Vx-Works operating system without requiring a password. Description During an NMAP audit of the AOS 5.1.1 code that...
0.1AI Score
0.009EPSS
An unknown service was found running on this port. Trojan Horses and other malware may sometimes open these ports to allow remote access to the machine. Ensure that this port is intended to be open and controlled by legitimate software installed by the...
7.1AI Score
7.4AI Score
EPSS
AI Score
OpenSSL clients contain a buffer overflow during the SSL3 handshake process
Overview OpenSSL is an open-source implementation of the Secure Sockets Layer (SSL) protocol. A remotely exploitable vulnerability exists in OpenSSL clients that could lead to the execution of arbitrary code on the client's system. Description OpenSSL clients using SSLv3 prior to version 0.9.6e...
0.4AI Score
0.78EPSS
SNMP Request Cisco Router Information Disclosure
It is possible to determine the model of the remote CISCO system by sending SNMP requests with the OID 1.3.6.1.4.1.9.1. An attacker may use this information to gain more knowledge about the remote...
7.1AI Score
Cisco Security Advisory: NTP vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: NTP Vulnerability Revision 1.0 For Public Release 2002 May 08 16:00 (UTC+0000) Summary Network Time Protocol (NTP) is used to synchronize time on multiple devices. A vulnerability has been discovered in the NTP daemon query processing...
AI Score
Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service (crash) via (1) creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or (2) remotely injecting the device name into...
6.9AI Score
0.029EPSS
Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service (crash) via (1) creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or (2) remotely injecting the device name into...
6.5AI Score
0.029EPSS
Mailman/Pipermail private mailing list/local user vulnerability
There is a vulnerability in Pipermail (mailing list archiving software distributed with and integrated with Mailman), that affects you if you have local users on the machine. If you have (a) private Mailman mailing lists and (b) user logins on the same machine, any local user can read the...
0.4AI Score
The remote host is running VNC (Virtual Network Computing), which uses the RFB (Remote Framebuffer) protocol to provide remote access to graphical user interfaces and thus permits a console on the remote host to be displayed on...
-0.1AI Score
Scripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers to cause a denial of service (crash) via (1) creating an ASP program that uses Scripting.FileSystemObject to open a file with an MS-DOS device name, or (2) remotely injecting the device name into...
6.5AI Score
0.029EPSS
Security Advisory: IOS HTTP authorization vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Security Advisory: IOS HTTP authorization vulnerability Revision 1.0 - INTERIM For public release 2001 June 27 08:00 (UTC -0800) ___________ Summary When HTTP server is enabled and local authorization is used, it is possible, under some...
0.2AI Score
Cisco IOS vulnerable to DoS via unrecognized transitive attribute in BGP UPDATE
Overview There is a denial-of-service vulnerability in several specific but common configurations of Cisco IOS. Description There is a problem involving BGP updates on Cisco routers with BGP4 Prefix Filtering and Inbound Route Maps enabled. A route update with an unrecognized transitive attribute.....
AI Score
0.018EPSS
Cisco Security Advisory: Cisco IOS Software TCP Initial Sequence NumberRandomization Improvements
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco IOS Software TCP Initial Sequence Number Randomization Improvements Revision 1.0: INTERIM For Public Release 2001 February 28 18:00 US/Pacific (UTC+0800) Summary Cisco IOS software contains a flaw that permits the successful...
-0.3AI Score
Cisco Security Advisory: Cisco IOS Software Multiple SNMP Community String Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco IOS Software Multiple SNMP Community String Vulnerabilities Revision 1.0: INTERIM For Public Release 2001 February 28 11:00 US/Eastern (UTC+0500) Summary Multiple Cisco IOS software and CatOS software releases contain several...
0.5AI Score
Security Advisory: Cisco IOS Software SNMP Read-Write ILMI Community String Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco IOS Software SNMP Read-Write ILMI Community String Vulnerability Revision 1.0: INTERIM For Public Release 2001 February 27 04:00 US/Eastern (UTC+0500) _________ Summary Cisco IOS software releases based on versions 11.x and...
0.4AI Score
numerous format string attacks in Nap ( Napster for linux )
hi to everyone here, nap (ver 1.4.4 ) is a little ( and good ) term based napster client for linux ( tested on my linux 2.2.17 ) and others *nix like. to simplify the pb just consider two parts, one for outgoing tasks, the other for incomings ones. there are plenty of possible string format...
-0.2AI Score
Security Advisory: Cisco IOS Software TELNET Option Handling Vulnerability
Cisco IOS Software TELNET Option Handling Vulnerability Revision 1.0 For public release Thursday 2000/04/20 at 09:00 AM US/Eastern (UTC-0400). Summary A defect in multiple Cisco IOS software versions will cause a Cisco router to reload unexpectedly when the router is tested for security...
-0.1AI Score
-0.4AI Score
7AI Score
2020-07 Servicing Stack Update for Windows 10 Version 2004 for x86-based Systems (KB4566785)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your...
6.7AI Score
Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB954155)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your...
3.6AI Score
A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article.....
1.8AI Score
Security Update for Windows Vista for x64-based Systems (KB2655992)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain access to information. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your...
3.1AI Score
Windows SharePoint Services 3.0 Service Pack 3 x64 Edition (KB2526305)
Windows SharePoint Services 3.0 Service Pack 3 (KB2526305) provides the latest updates to Windows SharePoint Services 3.0. After you install this item, you may have to restart your computer. After you have installed this item, it cannot be...
3.3AI Score
Service Pack 1 for Visio Viewer 2010 (KB2460065) 32-bit Edition
Service Pack 1 (SP1) for Visio Viewer 2010 32-bit Edition contains new updates which improve security, performance, and stability. Additionally, the SP is a roll-up of all previously released...
2.3AI Score